Man, all excellent points...
Well, Europe in general has been much bigger on "privacy" than the US/North America. I agree with you about real cookies: way better to teach people how to surf the internet than to give US/NA companies an advantage over EU companies (since most EU companies serve EU visitors etc) by adding an onus on them (an onus? onusses?).
When it comes to some of the other stuff, though, I dunno: the new APIs coming with HTML5 like localstorage and whatnot actually include some things that the user (so far with current browsers) can't remove, at least not easily (I'm sure anyone can hack their .config folders, but should Grandma have to do that??).
That's what my husband says every time he reads stuff like the twitter account of [@herpderpedia (this accound retweeted everyone who was like "ZOMG WIKIPEDIA WHY YOU BLACK I HAVE TERM PAPER DUE!!!" and my husband and his geeky programmer friends are all like, "[url=https://en.wikipedia.org/wiki/Eternal_September]ETERNAL SEPTEMBER](https://twitter.com/herpderpedia) AAAARAG WHY DID WE LET STUPIDS ON TEH INTARWEBZ???"
Me, I figured computers would become toasters in every home eventually, so some part of the internet has to be Derp-land anyway.
With the SOPA-bill replacements (ACTA and the so-called "anti-kiddie-pr0n" bills), I figure this stuff will get passed in one way or anther (Spain passed a SOPA-like bill already, other countries are following suit), and I think we all need to accept that there will be at least 2 "Internets": the spied-on commercial censored version for most people and a free illegal sub-net for nerds who know what to do.
All off-topic, though, since the EU directive (if any country's laws are actually enforced) means all commercial companies will need to comply.
I am a far bigger proponent of education myself. Teach people (and start with the kids in school today) how the internet works. DNS should never be a topic considered too esoteric for schools: today it's as important as anything else, at least in the West. Kids and their parents are becoming parts of bot-nets and spread spam and virusses because of ignorance, and this should count as a threat. They need to know how phishing works (no, banks shouldn't be the only ones trying to educate people on this, it should be basic requirements in school), how spam works, how SMTP works (and why addresses are so spoofable), how DNS works, how browsers work, and how to install any of the gazillion plugins on ANY browser that alert users automatically on all 3rd-party anythings.
If everyone had, say, something like Ghostery, which at its minimum settings merely alerts users to who's tracking them, that right there could be an excuse to take the onus off those serving web pages. But the lawmakers haven't considered this apparently.
This is scary and dangerous. Sure, it was funny to make fun of Alaska Senator Ted Stevens (who was then chair of the United States Senate Committee on Commerce, Science and Transportation which "innernetz" is a part of as a subcommittee), but people only get into those positions of power after being in politics for a long time... and technology moves fast.
The fact that most people using interwebz seem to have missed that SOPA has just been replaced almost immediately by the [same guy who introduced SOPA (and is much less likely to be protested so hard as SOPA [url=http://www.opencongress.org/bill/112-h1981/show]due to its name](https://en.wikipedia.org/wiki/Lamar_S._Smith)) just proves to me that the Dual-Internet is coming and rather inevitable.
*no, neither of the "new" bills are that new... they've been brewing for some time, but have now become the new front-line in the US's war against free exchange of information via the series of tubes.